$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/B507E28636AE11EE9BDDAA12C4F9AE02.roa File: B507E28636AE11EE9BDDAA12C4F9AE02.roa (raw, json) Hash identifier: LQnT0n54JtR5WUGs5n+Hhel2WSNhxHkIPTdvb8vps5Q= Subject key identifier: 0F:B7:98:B4:CB:76:C7:39:FD:A9:7F:DD:5E:0C:92:E9:83:B9:67:83 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: D8 Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/B507E28636AE11EE9BDDAA12C4F9AE02.roa Signing time: Fri 09 Aug 2024 04:55:25 +0000 ROA not before: Fri 09 Aug 2024 04:55:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151620 IP address blocks: 103.239.82.0/23 maxlen: 23 103.239.82.0/24 maxlen: 24 103.239.83.0/24 maxlen: 24 2001:df2:b640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: Aug 9 04:55:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b5a13d-007d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:ce:70:59:84:f1:ed:24:1f:1d:03:59:55: 49:69:cc:7b:4e:9b:26:21:27:6e:14:25:44:38:e1: 1c:fe:1a:23:d5:20:ba:5b:e2:2f:32:0f:c5:b3:93: 58:8b:e0:ab:3f:89:aa:d5:a5:25:aa:f8:c7:a1:b4: 1b:db:78:12:47:8e:9b:7d:1b:9c:e6:22:b0:cb:c3: ea:fe:9f:ac:ea:77:18:4a:10:52:4b:07:a1:38:cd: 8f:fe:03:65:e1:f5:40:d6:bb:b3:79:84:44:48:d5: 89:36:23:e3:16:ab:11:17:b7:55:9f:c0:40:99:43: a7:22:09:af:25:92:fc:a7:3a:d6:45:92:3d:0d:a7: e1:1e:4e:7a:82:38:66:11:ae:17:2d:ce:a9:e9:b8: 6c:ef:0e:10:f6:0a:d7:a0:97:09:96:67:57:12:a9: 7a:33:2e:57:b3:1b:c3:da:43:2f:de:8f:ba:c7:19: 6d:86:50:54:2a:29:39:b0:d5:e6:22:13:20:62:4b: 7e:13:83:02:36:da:a0:15:60:fd:a9:b4:7f:fb:7b: 71:0f:3e:7e:e6:29:c0:85:ef:f2:be:17:03:63:71: 4f:fc:13:68:3d:6c:18:9e:9f:36:66:56:1a:eb:41: 88:3d:c4:b2:73:28:9b:fa:a0:35:19:b8:e4:46:98: c8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B7:98:B4:CB:76:C7:39:FD:A9:7F:DD:5E:0C:92:E9:83:B9:67:83 X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/B507E28636AE11EE9BDDAA12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.82.0/23 IPv6: 2001:df2:b640::/48 Signature Algorithm: sha256WithRSAEncryption 88:7e:6c:40:27:c1:c1:27:55:89:32:72:51:a3:00:9a:2b:92: ae:6f:9d:c5:ec:c8:9a:ce:04:83:00:6d:63:4f:f5:24:08:54: ec:09:3e:82:9b:40:36:1b:1e:01:e4:aa:bc:e8:e0:ec:ff:ae: 8f:bd:52:e6:4e:9e:e1:ac:88:72:ff:39:13:bc:3f:e9:a6:95: d2:f7:9e:f0:23:e0:41:b3:bd:8f:55:fc:56:07:86:b3:fd:b3: 68:d0:6d:86:53:08:ce:fc:be:3e:c7:f2:a7:0b:08:b1:2c:c7: 76:01:6b:ed:f1:d0:19:c2:09:c5:56:8e:3a:bc:2a:76:c1:d7: 74:aa:f8:a2:35:9a:37:b9:b4:f5:3f:7b:f6:3d:d7:cf:a4:66: b9:7a:37:d9:0b:6f:ef:9a:7a:7e:e5:57:cc:2e:93:6b:53:49: 34:c7:fb:52:5c:fb:c4:fb:a3:5c:8f:fe:8e:16:9d:99:6a:a1: bc:10:f4:ca:59:a4:a1:49:7a:4e:25:b1:93:19:c9:6d:5a:89: df:f3:37:b8:dd:68:d5:d7:b5:37:dd:69:a2:20:b5:a4:2a:87: bf:a9:71:03:67:e2:43:10:7b:e4:e7:51:cf:0d:69:5a:c8:67: 59:87:73:e5:44:30:41:1f:5b:6b:d9:53:e1:b1:83:0b:f4:a5: c7:a2:6c:01 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjQwODA5MDQ1NTI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1YTEzZC0wMDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVPOcFmE8e0kHx0DWVVJacx7TpsmISduFCVEOOEc/hoj1SC6W+IvMg/Fs5NY i+CrP4mq1aUlqvjHobQb23gSR46bfRuc5iKwy8Pq/p+s6ncYShBSSwehOM2P/gNl 4fVA1ruzeYRESNWJNiPjFqsRF7dVn8BAmUOnIgmvJZL8pzrWRZI9DafhHk56gjhm Ea4XLc6p6bhs7w4Q9grXoJcJlmdXEql6My5XsxvD2kMv3o+6xxlthlBUKik5sNXm IhMgYkt+E4MCNtqgFWD9qbR/+3txDz5+5inAhe/yvhcDY3FP/BNoPWwYnp82ZlYa 60GIPcSycyib+qA1GbjkRpjIMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA+3mLTL dsc5/al/3V4MkumDuWeDMB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FCRkUvRjFENTU4N0UyNUYxMTFFRUI3QjQ4MDU4QzRGOUFFMDIvQjUwN0UyODYz NkFFMTFFRTlCRERBQTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn71IwDwQCAAIwCQMHACABDfK2QDANBgkqhkiG9w0BAQsF AAOCAQEAiH5sQCfBwSdViTJyUaMAmiuSrm+dxezIms4EgwBtY0/1JAhU7Ak+gptA NhseAeSqvOjg7P+uj71S5k6e4ayIcv85E7w/6aaV0vee8CPgQbO9j1X8VgeGs/2z aNBthlMIzvy+PsfypwsIsSzHdgFr7fHQGcIJxVaOOrwqdsHXdKr4ojWaN7m09T97 9j3Xz6RmuXo32Qtv75p6fuVXzC6Ta1NJNMf7Ulz7xPujXI/+jhadmWqhvBD0ylmk oUl6TiWxkxnJbVqJ3/M3uN1o1de1N91poiC1pCqHv6lxA2fiQxB75OdRzw1pWshn WYdz5UQwQR9ba9lT4bGDC/Slx6JsAQ== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org